CVE-2006-4182

CVSS 7.5 - HIGH

Description

Integer overflow in ClamAV 0.88.1 and 0.88.4, and other versions before 0.88.5, allows remote attackers to cause a denial of service (scanning service crash) and execute arbitrary code via a crafted Portable Executable (PE) file that leads to a heap-based buffer overflow when less memory is allocated than expected.

Affected Products

Vendor	Product	Version
clam_anti-virus	clamav	`All versions`
clam_anti-virus	clamav	`.`
clam_anti-virus	clamav	`0.15`
clam_anti-virus	clamav	`0.20`
clam_anti-virus	clamav	`0.21`
clam_anti-virus	clamav	`0.22`
clam_anti-virus	clamav	`0.23`
clam_anti-virus	clamav	`0.24`
clam_anti-virus	clamav	`0.51`
clam_anti-virus	clamav	`0.52`
clam_anti-virus	clamav	`0.53`
clam_anti-virus	clamav	`0.54`
clam_anti-virus	clamav	`0.60`
clam_anti-virus	clamav	`0.60p`
clam_anti-virus	clamav	`0.65`
clam_anti-virus	clamav	`0.67`
clam_anti-virus	clamav	`0.68`
clam_anti-virus	clamav	`0.68.1`
clam_anti-virus	clamav	`0.70`
clam_anti-virus	clamav	`0.71`
clam_anti-virus	clamav	`0.72`
clam_anti-virus	clamav	`0.73`
clam_anti-virus	clamav	`0.74`
clam_anti-virus	clamav	`0.75`
clam_anti-virus	clamav	`0.75.1`
clam_anti-virus	clamav	`0.80`
clam_anti-virus	clamav	`0.80_rc1`
clam_anti-virus	clamav	`0.80_rc2`
clam_anti-virus	clamav	`0.80_rc3`
clam_anti-virus	clamav	`0.80_rc4`
clam_anti-virus	clamav	`0.81`
clam_anti-virus	clamav	`0.81_rc1`
clam_anti-virus	clamav	`0.82`
clam_anti-virus	clamav	`0.83`
clam_anti-virus	clamav	`0.84`
clam_anti-virus	clamav	`0.84_rc1`
clam_anti-virus	clamav	`0.84_rc2`
clam_anti-virus	clamav	`0.85`
clam_anti-virus	clamav	`0.85.1`
clam_anti-virus	clamav	`0.86`
clam_anti-virus	clamav	`0.86.1`
clam_anti-virus	clamav	`0.86.2`
clam_anti-virus	clamav	`0.86_rc1`
clam_anti-virus	clamav	`0.87`
clam_anti-virus	clamav	`0.87.1`
clam_anti-virus	clamav	`0.88`
clam_anti-virus	clamav	`0.88.1`
clam_anti-virus	clamav	`0.88.3`